QUESTION 87You administer an Azure Storage account named contosostorage. The account has a blob container to store image files.A user reports being unable to access an image file.You need to ensure that anonymous users can successfully read image files from the container.Which log entry should you use to verify access?

QUESTION 88You manage a software-as-a-service application named SaasApp1 that provides user management features in a multi-directory environment.You plan to offer SaasApp1 to other organizations that use Azure Active Directory.You need to ensure that SaasApp1 can access directory objects.What should you do?

Answer: DExplanation: The Azure Active Directory Graph API provides programmatic access to Azure AD through REST API endpoints. Applications can use the Graph API to perform create, read, update, and delete (CRUD) operations on directory data and objects. For example, the Graph API supports the following common operations for a user object:/ Create a new user in a directory/ Get a user’s detailed properties, such as their groups / Update a user’s properties, such as their location and phone number, or change their password/ Check a user’s group membership for role-based access / Disable a user’s account or delete it entirelyhttp://msdn.microsoft.com/en-us/library/azure/hh974476.aspx

QUESTION 89Drag and Drop QuestionYou plan to deploy a cloud service named contosoapp that has a web role named contosoweb and a worker role named contosoimagepurge.You need to ensure the service meets the following requirements:– Contosoweb can be accessed over the Internet by using http. – Contosoimagepurge can only be accessed through tcp port 5001 from contosoweb.– Contosoimagepurge cannot be accessed directly over the Internet.Which configuration should you use? To answer, drag the appropriate configuration setting to the correct location in the service configuration file. Each configuration setting may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.Answer:

QUESTION 90Your company is launching a public website that allows users to stream videos.You upload multiple video files to an Azure storage container.You need to give anonymous users read access to all of the video files in the storage container.What should you do?

A. Edit each blob’s metadata and set the access policy to Public Blob.B. Edit the container metadata and set the access policy to Public Container.C. Move the files into a container sub-directory and set the directory access level to Public Blob.D. Edit the container metadata and set the access policy to Public Blob.

Answer: CExplanation: By default, the container is private and can be accessed only by the account owner. To allow public read access to the blobs in the container, but not the container properties and metadata, use the “Public Blob” option. To allow full public read access for the container and blobs, use the “Public Container” option.

QUESTION 91Drag and Drop QuestionYour development team has created a new solution that is deployed in a virtual network named fabDevVNet.Your testing team wants to begin testing the solution in a second Azure subscription.You need to create a virtual network named fabTestVNet that is identical to fabDevVNet. You want to achieve this goal by using the least amount of administrative effort.Which three steps should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.Answer: